Information Security Architect
Indexed description
How You Will Do It
Design & Architecture
- Develop and implement enterprise-wide security reference architectures.
- Ensure alignment with global security standards and policies.
- Approve final designs and validate builds for compliance.
- Follow the Security Posture Assessment process, which involves research, validation, and evaluation of all new initiatives, with phase gates reviews presented to all stakeholders during the process
- Conduct security posture assessments for new initiatives.
- Identify and mitigate risks in third-party solutions.
- Ensure adherence to regulatory and internal security requirements.
- Partner with service management and stakeholders to gather requirements.
- Act as a trusted advisor to business units and IT teams.
- Provide expert input on security standards, roadmaps, and infrastructure.
- Create high-quality technical documentation, white papers, and presentations.
- Communicate complex security concepts clearly to technical and non-technical audiences.
- Stay current on emerging threats, vulnerabilities, and technologies.
- Recommend improvements in network, identity, and infrastructure security.
- 3+ years of experience in information security, including security applications.
- Strong understanding of attacker techniques, threat landscapes, vulnerability management, and security monitoring.
- Broad technical expertise in:
- Endpoint and platform security (Windows, Linux, mobile)
- Identity and access management (IAM), PKI, encryption/tokenization, data protection
- Cloud security (AWS, Azure, GCP)
- Network security (web proxies, reverse proxies, load balancing, IDS/IPS, firewall, wireless, and remote connectivity, TCP/IP protocol, and remote access security techniques/products)
- Excellent communication skills—both written and verbal.
- Ability to work independently and collaboratively in a global team.
- High integrity and discretion in handling confidential matters.
- Bachelor’s degree in Computer Science, Engineering, or a related field (or equivalent experience).
- Familiarity with compliance frameworks (PCI-DSS, HIPAA, FISMA, SOX).
- Overview of NIST standards and security architecture frameworks (e.g., SABSA, TOGAF).
- Experience in security operations or incident analysis.
- Certifications
- Certified Information Systems Security Professional (CISSP)
- Certified Information Systems Security Professional - Information Systems Security Architecture Professional (CISSP-ISSAP)
- Certified Cloud Security Professional (CCSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- Certified Ethical Hacker (CEH)
- Cisco Certified Network Associate Security (CCNA Security)
- Cisco Certified Network Associate (CCNA)
- Cisco Certified Network Professional Security (CCNP Security)
- Cisco Certified Network Professional (CCNP)
- Server Platform Certifications (Microsoft, Linux)
For more than 140 years, Johnson Controls has delivered performance where it really matters. Backed by advanced technology, lifecycle services and an industry-leading field organization, we elevate customer performance, turn goals into real-world results and help move society forward.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search